K
Katie
Hi, please can some one offer some advice?
2 days ago I opened a downloaded quick time movie but it didnt play so when
i clicked the play icon i had lots of pop ups which directed me to a website
which said
THIS WEBSPACE HAS BEEN SUSPENDED DUE TO NON PAYMENT!.
It gave the name of the www. to get the site online. "control dot
streameline dot net" and because I had a web page open at that time now each
time i go to that web page it says the same thing. I know there is nothing
wrong with the real website as I have another pc and it is ok on there. Also
the websites address doesnt change as if it is redirected.
So i have done virus scans, and adaware scans, (I also had my firewall on
and pop up blocker on too) but nothing found anything except for one online
scan which said I had an unknown Trojan in
"C:\Documents and Settings\chrissy\local settings\temp\autorun.exe"
"C:\Documents and Settings\chrissy\local settings\temp\autorungui.dll"
But the online scan wont remove it. So I remembered that on my other pc
Windows ME i could delete the temp contents without causing problems.
However now this laptop is XP and the Temp folder is quite different. In it
i have seen lots of other folders and things that look like they are not
meant to be deleted.
Can I safely delete the Temp folder in XP? I did a search for the files
that the online scan found and my search on my laptop couldnt find it at
all.
Is it possible for me to edit the registry to detach the trojan from this
web site? Can some one tell me how to do that please? I really need access
to the website on this laptop.
Please can any one offer me any help?
Thanks so much in advance.
Chris
2 days ago I opened a downloaded quick time movie but it didnt play so when
i clicked the play icon i had lots of pop ups which directed me to a website
which said
THIS WEBSPACE HAS BEEN SUSPENDED DUE TO NON PAYMENT!.
It gave the name of the www. to get the site online. "control dot
streameline dot net" and because I had a web page open at that time now each
time i go to that web page it says the same thing. I know there is nothing
wrong with the real website as I have another pc and it is ok on there. Also
the websites address doesnt change as if it is redirected.
So i have done virus scans, and adaware scans, (I also had my firewall on
and pop up blocker on too) but nothing found anything except for one online
scan which said I had an unknown Trojan in
"C:\Documents and Settings\chrissy\local settings\temp\autorun.exe"
"C:\Documents and Settings\chrissy\local settings\temp\autorungui.dll"
But the online scan wont remove it. So I remembered that on my other pc
Windows ME i could delete the temp contents without causing problems.
However now this laptop is XP and the Temp folder is quite different. In it
i have seen lots of other folders and things that look like they are not
meant to be deleted.
Can I safely delete the Temp folder in XP? I did a search for the files
that the online scan found and my search on my laptop couldnt find it at
all.
Is it possible for me to edit the registry to detach the trojan from this
web site? Can some one tell me how to do that please? I really need access
to the website on this laptop.
Please can any one offer me any help?
Thanks so much in advance.
Chris